Namespace
- CLASS ActionController::RequestForgeryProtection::ProtectionMethods::NullSession::NullCookieJar
- CLASS ActionController::RequestForgeryProtection::ProtectionMethods::NullSession::NullSessionHash
Methods
Class Public methods
new(controller) Link
Instance Public methods
handle_unverified_request() Link
This is the method that defines the application behavior when a request is found to be unverified.
# File actionpack/lib/action_controller/metal/request_forgery_protection.rb, line 259 def handle_unverified_request request = @controller.request request.session = NullSessionHash.new(request) request.flash = nil request.session_options = { skip: true } request.cookie_jar = NullCookieJar.build(request, {}) end